The Role Assignments APIs allow you to assign custom roles, and designate third-party admin status, to users, groups and public client apps.
okta.roles.read
Lists all assigned roles of group identified by groupId
Success
Forbidden
Not Found
Too Many Requests
[- {
- "assignmentType": "GROUP",
- "created": "2019-08-24T14:15:22Z",
- "description": "string",
- "id": "string",
- "label": "string",
- "lastUpdated": "2019-08-24T14:15:22Z",
- "status": "ACTIVE",
- "type": "API_ACCESS_MANAGEMENT_ADMIN",
- "_embedded": {
- "property1": { },
- "property2": { }
}, - "_links": {
- "self": {
- "hints": {
- "allow": [
- "DELETE"
]
}, - "href": "string",
- "name": "string",
- "templated": true,
- "type": "string"
}
}
}
]
okta.roles.manage
Assigns a role to a group
Success
Success
Bad Request
Forbidden
Not Found
Too Many Requests
{- "type": "API_ACCESS_MANAGEMENT_ADMIN"
}
{- "assignmentType": "GROUP",
- "created": "2019-08-24T14:15:22Z",
- "description": "string",
- "id": "string",
- "label": "string",
- "lastUpdated": "2019-08-24T14:15:22Z",
- "status": "ACTIVE",
- "type": "API_ACCESS_MANAGEMENT_ADMIN",
- "_embedded": {
- "property1": { },
- "property2": { }
}, - "_links": {
- "self": {
- "hints": {
- "allow": [
- "DELETE"
]
}, - "href": "string",
- "name": "string",
- "templated": true,
- "type": "string"
}
}
}
okta.roles.read
Retrieves a role identified by roleId
assigned to group identified by groupId
Success
Forbidden
Not Found
Too Many Requests
{- "assignmentType": "GROUP",
- "created": "2019-08-24T14:15:22Z",
- "description": "string",
- "id": "string",
- "label": "string",
- "lastUpdated": "2019-08-24T14:15:22Z",
- "status": "ACTIVE",
- "type": "API_ACCESS_MANAGEMENT_ADMIN",
- "_embedded": {
- "property1": { },
- "property2": { }
}, - "_links": {
- "self": {
- "hints": {
- "allow": [
- "DELETE"
]
}, - "href": "string",
- "name": "string",
- "templated": true,
- "type": "string"
}
}
}
okta.roles.manage
Unassigns a role identified by roleId
assigned to group identified by groupId
No Content
Forbidden
Not Found
Too Many Requests
{- "errorCode": "E0000006",
- "errorSummary": "You do not have permission to perform the requested action",
- "errorLink": "E0000006",
- "errorId": "sampleNUSD_8fdkFd8fs8SDBK",
- "errorCauses": [ ]
}
okta.roles.read
Lists all users with Role Assignments
Success
Forbidden
Too Many Requests
{- "value": [
- {
- "id": "00u118oQYT4TBGuay0g4",
- "orn": "orn:okta:00o5rb5mt2H3d1TJd0h7:users:00u118oQYT4TBGuay0g4",
- "_links": {
}
}
], - "_links": {
}
}
okta.roles.read
Lists all roles assigned to a user identified by userId
Success
Forbidden
Not Found
Too Many Requests
[- {
- "assignmentType": "GROUP",
- "created": "2019-08-24T14:15:22Z",
- "description": "string",
- "id": "string",
- "label": "string",
- "lastUpdated": "2019-08-24T14:15:22Z",
- "status": "ACTIVE",
- "type": "API_ACCESS_MANAGEMENT_ADMIN",
- "_embedded": {
- "property1": { },
- "property2": { }
}, - "_links": {
- "self": {
- "hints": {
- "allow": [
- "DELETE"
]
}, - "href": "string",
- "name": "string",
- "templated": true,
- "type": "string"
}
}
}
]
okta.roles.manage
Assigns a role to a user identified by userId
type | string (RoleType) Standard role type
|
Created
Bad Request
Forbidden
Not Found
Too Many Requests
{- "type": "API_ACCESS_MANAGEMENT_ADMIN"
}
{- "assignmentType": "GROUP",
- "created": "2019-08-24T14:15:22Z",
- "description": "string",
- "id": "string",
- "label": "string",
- "lastUpdated": "2019-08-24T14:15:22Z",
- "status": "ACTIVE",
- "type": "API_ACCESS_MANAGEMENT_ADMIN",
- "_embedded": {
- "property1": { },
- "property2": { }
}, - "_links": {
- "self": {
- "hints": {
- "allow": [
- "DELETE"
]
}, - "href": "string",
- "name": "string",
- "templated": true,
- "type": "string"
}
}
}
okta.roles.read
Retrieves a role identified by roleId
assigned to a user identified by userId
Success
Forbidden
Not Found
Too Many Requests
{- "assignmentType": "GROUP",
- "created": "2019-08-24T14:15:22Z",
- "description": "string",
- "id": "string",
- "label": "string",
- "lastUpdated": "2019-08-24T14:15:22Z",
- "status": "ACTIVE",
- "type": "API_ACCESS_MANAGEMENT_ADMIN",
- "_embedded": {
- "property1": { },
- "property2": { }
}, - "_links": {
- "self": {
- "hints": {
- "allow": [
- "DELETE"
]
}, - "href": "string",
- "name": "string",
- "templated": true,
- "type": "string"
}
}
}
okta.roles.manage
Unassigns a role identified by roleId
from a user identified by userId
No Content
Forbidden
Not Found
Too Many Requests
{- "errorCode": "E0000006",
- "errorSummary": "You do not have permission to perform the requested action",
- "errorLink": "E0000006",
- "errorId": "sampleNUSD_8fdkFd8fs8SDBK",
- "errorCauses": [ ]
}
okta.roles.read
Lists all Roles by clientId
Success
Forbidden
Not Found
Too Many Requests
[- {
- "id": "JBCUYUC7IRCVGS27IFCE2SKO",
- "label": "Help Desk Administrator",
- "type": "HELP_DESK_ADMIN",
- "status": "ACTIVE",
- "created": "2023-05-01T14:24:54.000Z",
- "lastUpdated": "2023-05-01T14:24:54.000Z",
- "assignmentType": "CLIENT",
- "_links": {
}
}, - {
- "id": "irb4ey26fpFI3vQ8y0g7",
- "label": "view_minimal",
- "type": "CUSTOM",
- "status": "ACTIVE",
- "created": "2023-05-01T15:16:47.000Z",
- "lastUpdated": "2023-05-01T15:16:47.000Z",
- "assignmentType": "CLIENT",
- "resource-set": "iam4cxy6z7hhaZCSk0g7",
- "role": "cr04cxy6yzSCtNciD0g7",
- "_links": {
- "permissions": {
},
}
}
]
okta.roles.manage
Assigns a Role to a Client
Success
Forbidden
Not Found
Too Many Requests
{- "type": "HELP_DESK_ADMIN,"
}
{- "id": "JBCUYUC7IRCVGS27IFCE2SKO",
- "label": "Help Desk Administrator",
- "type": "HELP_DESK_ADMIN",
- "status": "ACTIVE",
- "created": "2023-05-01T14:24:54.000Z",
- "lastUpdated": "2023-05-01T14:24:54.000Z",
- "assignmentType": "CLIENT",
- "_links": {
}
}
okta.roles.read
Retrieves a Client Role
Success
Forbidden
Not Found
Too Many Requests
{- "id": "JBCUYUC7IRCVGS27IFCE2SKO",
- "label": "Help Desk Administrator",
- "type": "HELP_DESK_ADMIN",
- "status": "ACTIVE",
- "created": "2023-05-01T14:24:54.000Z",
- "lastUpdated": "2023-05-01T14:24:54.000Z",
- "assignmentType": "CLIENT",
- "_links": {
}
}
okta.roles.manage
Unassigns a Role from a Client
No Content
Forbidden
Not Found
Too Many Requests
{- "errorCode": "E0000006",
- "errorSummary": "You do not have permission to perform the requested action",
- "errorLink": "E0000006",
- "errorId": "sampleNUSD_8fdkFd8fs8SDBK",
- "errorCauses": [ ]
}